In vSphere, create a user role with the required privileges to query information from vCenter Server and receive metric data in vRealize Operations Manager. In vRealize Operations Manager, you can also run actions or tasks on the objects it manages in vCenter Server.

Add the privileges to the role that are required for typical virtual machine life cycle operations, such as snapshot management and virtual machine resource configuration.


  1. In a Web browser, log in to vCenter Server by using the vSphere Client.
    Setting Value
    URL https://sfo01m01vc01.sfo01.rainpole.local/ui
    User name administrator@vsphere.local
    Password vsphere_admin_password
  2. Select Menu > Administration.
  3. In the left pane, select Access control > Roles.
  4. From the Roles provider drop-down menu, select sfo01m01vc01.sfo01.rainpole.local.
  5. Create a role for collecting data from and performing actions on vCenter Server.
    1. Click the Create role action icon, configure these privileges, and click Next.



      Virtual machine

      Change Configuration.Change CPU count

      Change Configuration.Change resource

      Change Configuration.Change memory

      Edit Inventory.Remove

      Interaction.Power on

      Interaction.Power off

      Snapshot Management.Create snapshot

      Snapshot Management.Remove snapshot


      Assign virtual machine to resource pool

      Migrate powered off virtual machine

      Migrate powered on virtual machine


      Allocate space

    2. In the Role name text box, enter vRealize Operations to vSphere Integration (Actions) and click Finish.

      This role inherits the System.Anonymous, System.View, and System.Read privileges. 

      The Management domain vCenter Server in Region A propagates the role to the other linked vCenter Server instances.